Computer Security Resource Center

Computer SecurityResource Center

Cryptographic Algorithm Validation Program

Project Links

CAVP Testing: Individual Component Testing

Algorithm Specifications

Beginning in 2011, validation testing of individual algorithm components was made available. Many situations exist where the specifications of an algorithm standard are implemented in multiple cryptographic boundaries. For example, PIV Smartcard applications may implement one part of an algorithm on the smartcard and another part of the algorithm on the smartcard reader. Possible reasons for implementing an algorithm this way is processing limitations or size constraints. In this situation, the algorithm validation testing of the complete algorithm can't be utilized since this requires everything to be within the same cryptographic boundary. Therefore, component testing was introduced. Component testing allows assurance of the individual components of an algorithm. The algorithm specifications for the components for which we have validation testing are available from the corresponding algorithm sections in the Cryptographic Toolkit.

The RSASP1 Signature Primitive Validation System (RSASP1VS) specifies validation testing requirements for the RSASP1 function as described in PKCS#1 v2.1: RSA Cryptography Standard, June 14, 2002. The RSASP1 function component only tests the modular exponentiation function. Therefore, the test for PKCS1.5 and PKCS PSS is identical. The format of the input message is not specified or tested by this validation test. It is outside the scope of the component test for RSASP1. (This was modified in January 2014 to only include the modular exponentiation function.)